Father
Professional
- Messages
- 2,602
- Reaction score
- 786
- Points
- 113
The tense situation in the South China Sea has attracted the attention of many cybercrime groups.
In the first quarter of 2024, the Philippines recorded a sharp increase in cyber attacks amid heightened tensions in the South China Sea, according to the company Resecurity. Compared to the same period last year, the number of cyber attacks increased by almost 325%. It is noted that the activity of hacktivist groups and various disinformation campaigns has tripled.
In the second quarter of 2024, the trend continued: since the beginning of April, Resecurity has recorded many attacks carried out by previously unknown groups of hackers. These attacks are characterized by a mix of hacktivist ideological motivations and state-sponsored propaganda.
Resecurity points to the China-linked Mustang Panda group as one of the most active participants in the region's cyberspace information war. The use of pseudonyms associated with hacktivism allows participants in threats to avoid revealing their true identity, creating the impression of internal social conflict.
As part of its analysis of threat groups, Resecurity identifies several key actors that are accelerating their activity, including Philippine Exodus Security (PHEDS), Cyber Operation Alliance (COA), Robin Cyber Hood (RCH), and DeathNote Hackers (Philippines). Some of these groups have also been seen collaborating with Arab Anonymous and Sylnet Gang-SG.
Analysts consider the observed activity to be a preliminary preparation for broader malicious actions in the region, including cyber espionage, as well as targeted attacks on government agencies and critical infrastructure. Among the main targets of the attacks are the Department of the Interior and Local Government, the Bureau of Crop Production, the Philippine National Police and the Customs Bureau.
In the first quarter of 2024, the Philippines recorded a sharp increase in cyber attacks amid heightened tensions in the South China Sea, according to the company Resecurity. Compared to the same period last year, the number of cyber attacks increased by almost 325%. It is noted that the activity of hacktivist groups and various disinformation campaigns has tripled.
In the second quarter of 2024, the trend continued: since the beginning of April, Resecurity has recorded many attacks carried out by previously unknown groups of hackers. These attacks are characterized by a mix of hacktivist ideological motivations and state-sponsored propaganda.
Resecurity points to the China-linked Mustang Panda group as one of the most active participants in the region's cyberspace information war. The use of pseudonyms associated with hacktivism allows participants in threats to avoid revealing their true identity, creating the impression of internal social conflict.
As part of its analysis of threat groups, Resecurity identifies several key actors that are accelerating their activity, including Philippine Exodus Security (PHEDS), Cyber Operation Alliance (COA), Robin Cyber Hood (RCH), and DeathNote Hackers (Philippines). Some of these groups have also been seen collaborating with Arab Anonymous and Sylnet Gang-SG.
Analysts consider the observed activity to be a preliminary preparation for broader malicious actions in the region, including cyber espionage, as well as targeted attacks on government agencies and critical infrastructure. Among the main targets of the attacks are the Department of the Interior and Local Government, the Bureau of Crop Production, the Philippine National Police and the Customs Bureau.
